#VU98022 Use of Uninitialized Variable in golang (Red Hat package) - CVE-2024-9355


Vulnerability identifier: #VU98022

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-9355

CWE-ID: CWE-457

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
golang (Red Hat package)
Operating systems & Components / Operating system package or component

Vendor: Red Hat Inc.

Description

The vulnerability allows a remote attacker to weaken TLS encryption.

The vulnerability exists due to an uninitialized buffer length variable in the CGO bindings that intermittently return a zeroed buffer from (*boringHMAC).Sum() in FIPS mode. A remote attacker can randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode and weaken TLS security.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

golang (Red Hat package): before 1.21.13-4.el9_4

External links
https://bugzilla.redhat.com/show_bug.cgi?id=2315719

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Anolis OS update for grafana-pcp
Anolis OS update for grafana
Anolis OS update for go-toolset:an8 module
Multiple vulnerabilities in AMQ Streams
openEuler 24.03 LTS SP1 update for etcd
openEuler 24.03 LTS update for etcd
openEuler 20.03 LTS SP4 update for podman
openEuler 24.03 LTS update for podman
openEuler 22.03 LTS SP4 update for podman
openEuler 24.03 LTS SP1 update for podman